LetMeR00t/TA-thehive-cortex external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

LetMeR00t/TA-thehive-cortex

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/LetMeR00t/TA-thehive-cortex)

Close

LetMeR00t / TA-thehive-cortexView on GitHubMore

• External links
• Readme badge

Technical add-on for Splunk related to TheHive/Cortex from TheHive project

☆54Mar 21, 2026Updated this week

Alternatives and similar repositories for TA-thehive-cortex

Users that are interested in TA-thehive-cortex are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• TheHive-Project / awesome

  View on GitHub
  A curated list of awesome things related to TheHive & Cortex
  ☆185Oct 9, 2021Updated 4 years ago
• cdefid / TheHiveIRPlaybook

  View on GitHub
  TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response
  ☆13Jul 13, 2020Updated 5 years ago
• remg427 / misp42splunk

  View on GitHub
  A Splunk app to use MISP in background
  ☆112Jan 8, 2026Updated 2 months ago
• ch33r10 / BlueSpace2021

  View on GitHub
  Ekoparty's BlueSpace Keynote November 2021. Shoutout to @plugxor Muchas Gracias!!!
  ☆13Jun 5, 2023Updated 2 years ago
• guilhemmarchand / TA-jira-service-desk-simple-addon

  View on GitHub
  Atlasian JIRA add-on for Splunk alert actions
  ☆15Dec 2, 2025Updated 3 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• comunidadDOJO / SocAnalyst

  View on GitHub
  ☆12Sep 10, 2022Updated 3 years ago
• NextronSystems / TA-aurora

  View on GitHub
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Sep 27, 2022Updated 3 years ago
• voxpupuli / puppet-misp

  View on GitHub
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆14Mar 6, 2026Updated 2 weeks ago
• magicsword-io / Magic-SigExplorer

  View on GitHub
  ☆15Sep 24, 2024Updated last year
• Shuffle / shuffle-docs

  View on GitHub
  Documentation used for Shuffle
  ☆21Updated this week
• zolderio / misp-to-sentinel

  View on GitHub
  Azure function to insert MISP data in to Azure Sentinel
  ☆34Oct 19, 2022Updated 3 years ago
• eCrimeLabs / phish2MISP

  View on GitHub
  Easy way to create a MISP event related to a Phishing page
  ☆17May 31, 2023Updated 2 years ago
• Truvis / Splunk_TA_Truvis_Suricata5

  View on GitHub
  This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…
  ☆15Sep 5, 2020Updated 5 years ago
• TheHive-Project / Cortex-Analyzers

  View on GitHub
  Cortex Analyzers Repository
  ☆477Updated this week
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• cudeso / misp-tip-of-the-week

  View on GitHub
  A collection of tips for using MISP.
  ☆76Dec 11, 2024Updated last year
• murchisd / splunk_pstree_app

  View on GitHub
  Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)
  ☆24Mar 3, 2023Updated 3 years ago
• OTRF / OSSEM-DM

  View on GitHub
  OSSEM Detection Model
  ☆184Oct 11, 2022Updated 3 years ago
• Cyb3rWard0g / infosec-well-done

  View on GitHub
  A few quick recipes for those that do not have much time during the day
  ☆22Oct 28, 2024Updated last year
• jheise / yarascanner

  View on GitHub
  Golang based web service to scan files with yara rules
  ☆25Jul 6, 2017Updated 8 years ago
• P4T12ICK / Sigma2SplunkAlert

  View on GitHub
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆115May 18, 2020Updated 5 years ago
• jpalanco / klara-docker-compose

  View on GitHub
  Klara docker compose
  ☆11May 19, 2020Updated 5 years ago
• SigmaHQ / pySigma-backend-splunk

  View on GitHub
  pySigma Splunk backend
  ☆42Mar 16, 2026Updated last week
• TheHive-Project / docs

  View on GitHub
  Official documentation for TheHive Project applications
  ☆21Sep 29, 2023Updated 2 years ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• blookot / rsa2elk

  View on GitHub
  Converts Netwitness log parser configuration to Logstash configuration
  ☆20Sep 10, 2020Updated 5 years ago
• atc-project / atc-react

  View on GitHub
  A knowledge base of actionable Incident Response techniques
  ☆662May 31, 2022Updated 3 years ago
• zeflow / Sigma2SplunkAlert

  View on GitHub
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆12Jul 1, 2021Updated 4 years ago
• TheHive-Project / Synapse

  View on GitHub
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Jul 28, 2023Updated 2 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing

  View on GitHub
  DNS Dashboard for hunting and identifying beaconing
  ☆16Jul 29, 2020Updated 5 years ago
• threathunters-io / laurel

  View on GitHub
  Transform Linux Audit logs for SIEM usage
  ☆821Mar 5, 2026Updated 3 weeks ago
• LDO-CERT / orochi

  View on GitHub
  The Volatility Collaborative GUI
  ☆264Feb 11, 2026Updated last month
• ReconInfoSec / graylog2thehive

  View on GitHub
  Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.
  ☆45Aug 17, 2020Updated 5 years ago
• CAPESandbox / community

  View on GitHub
  Community modules for CAPE Sandbox
  ☆111Mar 18, 2026Updated last week
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• austinsonger / Incident-Playbook

  View on GitHub
  GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
  ☆1,548Jul 28, 2024Updated last year
• jipegit / IncidentsMindMaps

  View on GitHub
  Cybersecurity Incidents Mind Maps
  ☆34Sep 29, 2021Updated 4 years ago
• kaansk / shomon

  View on GitHub
  Shodan Monitoring integration for TheHive.
  ☆130Dec 12, 2024Updated last year
• siriussecurity / dettectinator

  View on GitHub
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆118Jan 22, 2026Updated 2 months ago
• splunk / TA-misp_es

  View on GitHub
  MISP to Splunk Enterprise Security Theat Intelligence Framework Integration
  ☆14Jul 11, 2023Updated 2 years ago
• MISP / best-practices-in-threat-intelligence

  View on GitHub
  Best practices in threat intelligence
  ☆50Nov 6, 2022Updated 3 years ago
• splunk / attack_range_local

  View on GitHub
  Build a attack range in your local machine
  ☆132May 8, 2023Updated 2 years ago